An Estonian nexus of cyber crime including spam, malware and botnets. DNS Changer trojans (dnschanger.troj, Zlob), also known as "pharming", is one of their specialties. Associated with many other Eastern European cyber crime gangs such as Russian Business Network, Esthost, Inhoster, Cernel, Hostfresh of Hong Kong and UkrTeleGroup (ukrtelegroup.com.ua). You may recognize those names from Atrivo/Intercage and McColo networks that went dark in late 2008 due to lack of trust from any peering networks. Don't be surprised to find them changing names again, that's all part of their MO.
Rove Digital made a small attempt to DDoS Spamhaus after they lost a connection via telia.lv and zlkon.lv.
Some aliases of Rove Digital:
- "Carrier Net", networkcarrier.net, AS22945
- Esthost (esthost.com)
- Estdomains (estdomains.com)
- Exact Solution, Inc (exaxt-solution.com)
- Front Communications, Inc (frontcommunications.net)
- Infradata (infradata.net)
- Media Code, Inc (license-verification.com)
- "Net Provider, Inc", provider4net.com, AS46764
- Operation Key (ok-site.com)
- Proper Software, Inc (proper-software.com)
- Tamme Arendus OY (tammearendus.ee)
- Promnet Ltd.
- Otegra LTD.
They also use these aliases:
These projects are Rove too:
GATHI Advertising network (gathi.com)
and this perhaps?
Colosecure - chicago
Not quite sure who this research outfit is (they're welcome to introduce themselves to Spamhaus, we'd like to know them), but they have some interesting info on Rove here and here.
Trend Micro writes about a cybercrime company in Tartu, Estonia, in their blog. They note that it changes names very frequently and allude to its former presence at Intercage and the loss of its registrar accreditation from ICANN. The blog introduces Trend's whitepaper, A Cybercrime Hub, about the company's crime operations.
The Register of Known Spam Operations (ROKSO) collates information and evidence on entities with a history of spamming or providing spam services, and entities affiliated or otherwise connected with them, for the purpose of assisting ISP Abuse Desks and Law Enforcement Agencies.